Usage
The Security Module Database Tool's capabilities are grouped as follows, using
these combinations of options and arguments. The options and arguments in
square brackets are optional, those without square brackets are required.
•
Creating a set of security management database files (
secmod.db
-create
•
Displaying basic module information or detailed information about the
contents of a given module:
-list
•
Adding a PKCS #11 module, which includes setting a supporting library file,
enabling ciphers, and setting default provider status for various security
mechanisms:
-add
[-mechanisms
•
Adding a PKCS #11 module from an existing JAR file:
-jar
[-tempdir
•
Deleting a specific PKCS #11 module from a security module database:
-delete
•
Initializing or changing a token's password:
-changepw
[-newpwfile new-password-file]
•
Setting the default provider status of various security mechanisms in an
existing PKCS #11 module:
-default
•
Clearing the default provider status of various security mechanisms in an
existing PKCS #11 module:
-undefault
•
Enabling a specific slot or all slots within a module:
-enable modulename [-slot slotname]
):
[modulename]
modulename
-libfile
mechanism-list
JAR-file
-installdir
temporary-directory
modulename
tokenname [-pwfile old-password-file]
modulename -mechanisms mechanism-list
modulename -mechanisms mechanism-list
library-file
[-ciphers
]
root-installation-directory
]
Chapter 16
,
key3.db
cert7.db
cipher-enable-list
Security Module Database Tool
Usage
, and
]
137